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INTRODUCTION 


One way to investigate problems in number theory is to look at special cases 
of the problem and to draw general conclusions from the empirical evidence 
accumulated. We have already seen instances, and we shall see many more, 
of dangers in this approach when seemingly clear patterns of behaviour can 
go unexpectedly wrong. Consider the numbers 2" — 2, for positive 

integers n. Investigation of the prime decompositions of these numbers 
would yield that 2? — 2 is divisible by 2, 2? — 2 is divisible by 3, 25 — 2 is 
divisible by 5 and 27 — 2 is divisible by 7. On the other hand taking 
composite exponents, 24 — 2 is not divisible by 4 and 29 — 2 is not divisible 
by 6. It is beginning to look as if 2" — 2 is divisible by n when n is prime 
but not when it is composite. Trying more and more values of n, we find 
that 2!” — 2 is divisible by 17, 215 — 2 is not divisible by 18, 2!9 — 2 is 
divisible by 19, and this no doubt fortifies our faith in the truth of this 
result. But no matter how much numerical evidence is gathered, we cannot 
be sure that the pattern really does persist until we have a general proof. 


For many hundreds of years mathematicians believed the result that 2? — 2 is 
divisible by p if, and only if, p is prime. They had good evidence to support 
their conjecture, but not a proof. It was 1819 before a counterexample was 
discovered. 341 = 11 x 31 is not prime but 234! — 2 is divisible by 341. 


In the 17th century Fermat showed interest in these numbers and he 
extended his researches beyond just looking at powers of 2. His interest was 
captured by numbers a? — a for any integer a, and he succeeded in proving 
that if p is prime then a? — a is divisible by p. He offered no conclusions 
when the exponent is composite. 


In his book Men of Mathematics (Pelican), E.T. Bell writes 


It is difficult if not impossible to state why some theorems in arithmetic 
are considered ‘important’ while others, equally difficult to prove, are 
dubbed trivial. One criterion, although not necessarily conclusive, is 
that the theorem shall be of use in other fields of mathematics. Another 
is that it shall suggest researches in arithmetic or in mathematics 
generally, and a third that it shall be in some respect universal. 
Fermat’s Theorem satisfies all of these somewhat arbitrary demands: it 
is of indispensable use in many departments of mathematics, including 
the theory of groups, which in turn is at the root of the theory of 
algebraic equations; it has suggested many investigations, of which the 
entire subject of primitive roots may be recalled to mathematical 
readers as an important instance; and finally it is universal in that it 
states a property of all prime numbers — such statements are extremely 
difficult to find and very few are known. 


When, in the first section of this unit, we meet Fermat's Theorem, which 
tends to be known as Fermat's Little Theorem to distinguish it from 
Fermat's Last Theorem which we shall meet in Unit 8, it may not appear to 
be anything remarkable. Yet as the unit unfolds we shall show many 
applications of the theorem, and in particular we shall capitalize on its 
immense potential in assisting in calculations involving large numbers. 
Deservedly it is considered to be a cornerstone in the development of 
number theory. 


The role of Fermat’s Theorem in solving certain problems will lead us into 
the subject of primitive roots (referred to in the extract from Bell above). 
We shall pursue these ideas more comprehensively in the next unit, but here 
we shall use them to explain the periodic behaviour of the decimal 
expansions of fractions. 


This unit introduces a second important result, Wilson's Theorem, which 

is similar in nature to Fermat’s Little Theorem although it is not connected in 
any way. This theorem asserts that if p is prime then (p — 1)! z —1 (mod p). 
Wilson's Theorem shares with Fermat's Little Theorem the feature that 
both are concerned with properties of all prime numbers. What is more 
they have another rare feature in common: for both there is a relatively 
simple general proof available! 


The statements of both Fermat’s and Wilson's Theorems are implications, 
that is, they are of the form if A holds then B holds. For such statements it 
is natural to ask about the converse: if B holds then A holds. The converse 
of Wilson's Theorem, which states that for p > 1, if (p — 1)! = —1 (mod p) 
then p is prime, will be seen to be true. On the other hand the converse of 
Fermat’s Little Theorem will be seen to be false. It is not true that if, for all 
integers a, we have that a? — a is divisible by p, then p must be prime. 


1 FERMAT'S LITTLE THEOREM 


11 Statement and proof of Fermat's Little 
Theorem 


Figure 1.1 below shows successive powers of integers representing the 
non-zero residue classes modulo the respective primes 3, 5 and 7. 


mod 3 mod 5 
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Figure 1.1 Powers modulo a prime 


There are some interesting patterns beginning to emerge from these tables. 
Notice how some power of each element is congruent to 1, and thereafter the 
powers ‘cycle’. For instance, if we continue to determine more and more 
powers of 4 modulo 7 then we get the sequence 


ADRAL LE LAZ Ls 

with the cycle 4, 2, 1 of length 3. 

The powers of 5 modulo 7 give the sequence 
52.:522:3/1,5/4,0,2, 3, os 

with a cycle 5, 4, 6, 2, 3, 1 of length 6. 


In particular, notice how the last listed row of each table consists entirely 
of 1’s. That is, for these three prime moduli, a?^! = 1 (mod p) for each 

à 0 (mod p). The result illustrated here holds generally for any prime p, 
and was first formulated by Fermat. This result may look slightly different 
from the claim in the introduction that, for all integers a, a? — a is divisible 
by p, but we shall see shortly that they are indeed the same. 


f The condition gcd(a, p) = 1 is 

Theorem 1.1 Fermat's Little Theorem equivalent to each of 

a #0 (mod p) and ‘p does not 

divide a’. Depending on the 

g^ !z1 (mod p). application we shall use the most 
appropriate form. 


If p is a prime and a is any integer with gcd(a, p) — 1, then 


Proof of Theorem 1.1 
Consider the set of p — 1 integers 


(a,2a,3a, ..., (p — 1)a}. 


None of these numbers is congruent modulo p to 0, for if ra = 0 (mod p), 
Euclid's Lemma gives r = 0 (mod p) or a = 0 (mod p), neither of which is 
the case here. What is more, no two of these numbers are congruent to each 
other modulo p, for if we had 


ra = sa (mod p), wherel <r<p—land1<s<p-l, 


then cancellation of the a, which we can do since gcd(a, p) — 1, gives 
r =s (mod p) and so r = s. It follows that these p — 1 numbers are 
congruent, in some order, to the numbers in the set 


[(1,2;3:— p —1] 
consisting of the least positive residues of p, excluding zero. 
So, multiplying all the numbers in each set together, 
ax2ax3ax---x(p-1)u21x2x3x---x(p—1) (mod p), 
which gives 
a?! x (p — 1)! = (p — 1)! (mod p). 


Since p does not divide (p — 1)! the latter can be cancelled throughout the 
congruence leaving a?~! = 1 (mod p), as required. tsi 


Pierre de Fermat (1601-1665) 


The 17th century was a fruitful period for mathematics. Descartes was 
the first to apply algebra to geometry thereby giving birth to the subject 
of analytical geometry, Pascal created the mathematical theory of 
probability and Newton and Leibnitz were developing the calculus. 
However, it is often argued that the greatest mathematician of this 
period was Fermat. 


Fermat was born near Toulouse, France, the son of a leather merchant. 
He lived a quiet, but eventful life in and around his birthplace. For his 
entire working life of 34 years he was a lawyer and magistrate in the 
local parliament of Toulouse. Fermat had no mathematical training and, 
indeed, showed no apparent interest in the subject until he was beyond 
30 years of age. He took to mathematics as a recreation, for the sheer 
love of it. An amateur he may have been, but his contributions to many 
areas of mathematics make him indisputably one of the all time greats. 


Fermat is regarded as a co-inventor of analytical geometry, working 
independently of Descartes on applications of algebra to geometry. One 
offshoot of his work was that he discovered a method for finding maxima 
and minima of functions well before Newton and Leibnitz came on the 
scene. Indeed a letter from Newton acknowledges that he got hints for 
his differential calculus from Fermat's method for drawing tangents. 


But Fermat's first love, and his greatest work, was in number theory, or 
‘higher arithmetic’ as it was then known. He was at his best in tackling 
problems involving primes and solving problems involving large numbers 
requiring vast amounts of computation. However, it was his use of new 


principles and methods which most influenced following generations and 
which could be said to have been the birth of modern number theory. 


Being an amateur, Fermat did not seek a reputation for his 
mathematical achievements. He refused to have any of his work 
published, preferring instead to correspond with a few contemporaries, 
most of whom were fellow amateurs. Our knowledge of Fermat's works 
relies on these letters and on the preservation of notes collected by his 
family after his death. The margins of his copy of a book on arithmetic, 
Bachet’s Diophantus, contained many of Fermat's results in number 
theory. The limited amount of space in the margin led to Fermat's habit 
of quoting results, but omitting key steps in the derivation of the result. 
Many is the time that mathematicians have wished that the margins of 
his books had been wider! 


Fermat explained the result of his Little Theorem in a letter to an 
official at the French mint, Frenicle. The letter included the comment, 
‘I would send you the demonstration if I did not fear its being too long’. 
Although it is generally accepted that Fermat did possess such a 
demonstration (or proof), nearly 100 years passed before a proof of 
Fermat's Little Theorem was at last published, by Euler. 


It is certainly not true that a?^! = 1 (mod p) when a = 0 (mod p), for 
0?-1 = 0 (mod p). However Fermat's Little Theorem, (which we shall refer 
to in the abbreviated form FLT), can be expressed in an alternative way 
which includes the case a = 0 (mod p), as follows. 


Fermat's Little Theorem, an alternative formulation 


If p is a prime and a is any integer, 


a? =a (mod p). 


Problem 1.1 


Prove that the two formulations of FLT are equivalent. That is, prove that 
for prime p: 


(a) if a? =a (mod p) for all integers a, then a?7! = 1 (mod p) for all 
a #0 (mod p); 

(b) if a?7! =1 (mod p) for all a Z 0 (mod p), then a? = a (mod p) for all 
integers a. 


FLT has applications in many areas, as we shall see. But it really comes into 
its own in assisting with complex calculations, as in the following examples. 


Example 1.1 
What is the remainder when 7% is divided by 17? 


FLT tells us that 7!6 = 1 (mod 17). Therefore, breaking the power 40 down 
in an appropriate way, 


799 = (716)? x 78 2 1? x 7? = (mod 17). 
Now 7? = 49 = —2 (mod 17), and so 
79 2 7? = (77)* = (—2)* = 16 (mod 17), 
and the remainder on dividing 74° by 17 is 16. $ 


Example 1.2 
Show that, for any odd prime p, 


1? + 2? + 3? 4- --- -- (p — 1)? is divisible by p. 
By FLT, a? =a (mod p) for all integers a. Therefore 
1? +2 -3P + ---+(p—1)? 21-42-34 --- (p — 1) (mod p) 


—1 
= B (mod p), sum of an arithmetic progression 
—1 
=0 (mod p), since E is an integer when p is odd. 
So p divides 1? + 2? + 3? + --- + (p — 1)? for all odd primes p. + 


Problem 1.2 

Find the remainder when 
(a) 5% is divided by 7; 
(b) 3737 is divided by 17. 


Problem 1.3 


Let p be a prime and gcd(a, p) = 1. Use FLT to verify that 
x = a?~?b (mod p) is a solution of the linear congruence az = b (mod p). 
Hence solve 5a = 18 (mod 19). 


12 Pseudoprimes 


The converse of the alternative formulation of FLT fails to hold. That is, if 
a” =a (mod n) for every integer a, it does not follow that n is prime. But 
counterexamples to this converse are not so easy to find. Concentration on 
the case a — 2 has historical interest. For a very long time it was thought n 
had to be prime for 2" — 2 to be divisible by n, and this was used as a test 
for the primality of n. Let us first put an end to that conjecture. 


Example 1.3 
Show that 2°41 = 2 (mod 341). 


We shall show that 2°4° = 1 (mod 341), from which the result follows on 
multiplying through by 2. 


Notice that 341 = 11 x 31, so our line of attack will be to determine first the 
values of 2340 (mod 11) and 2340 (mod 31). As 11 and 31 are primes we can 
call on FLT; this tells us that 21° = 1 (mod 11) and that 2°° = 1 (mod 31). 
Working modulo 11: 


2340 = (210)34 = 1% = 1 (mod 11). 
Working modulo 31: 
2340 = (230)! x (2910) 2111 x 295 x 295z 1x 1x 121 (mod 31). 


As 11 and 31 are relatively prime we can appeal to Theorem 1.3 of Unit 3 to 
conclude, from the above two congruences, that 


2349 = 1 (mod 341). + 


Composite integers n with the property that n divides 2” — 2 are called 
pseudoprimes. They do not have to be odd numbers; the two smallest even 
pseudoprimes are 161038 and 215326. There are infinitely many 
pseudoprimes, although they appear to be much sparser than the primes 
themselves. For example, a recent calculation has shown that of the numbers 


341 is not a counterexample to the 
converse of FLT since it is not true 
that a?*! = a (mod 341) for all 
integers a. For example, 

3341 = 168 (mod 341). 


Pseudoprimes are sometimes called 
Poulet numbers, after the French 
mathematician who, in 1926, 
computed them all up to 5 x 10”. 


up to 2 x 10!? there are 882 206 716 primes but only 19865 pseudoprimes. 
'The smallest pseudoprime, discovered in 1819, is 341. The next, discovered 
in 1912, furnishes us with the first counterexample to the converse of FLT. 


Example 1.4 
Show that a°®! = a (mod 561) for every integer a. 


First, we factorize 561 as 561 — 3 x 11 x 17. We shall determine the value of 
a°®! modulo each of 3, 11 and 17, using FLT. For any integer a, 


a? =a (mod 3), a =a (mod 11) and a!” =a (mod 17). 
Working modulo 3: 


a56! = ay = a197 = fa") xaz a8 xaz 63 = (a3)?! ES a2! 


Working modulo 11: 
asl = (g1)9! = a" = (4)* x a? =at xa = a"! za (mod 11). 
Working modulo 17: 


ae! = (q!")8 = 43 =a" x 916 =a x 916 =a" =a (mod 17). 


Theorem 1.3 of Unit 3 now gives a?9! = a (mod 561) for all integers a. So 


561 is a counterexample to the converse of FLT. ¢ It has been proved, in 1994, that 
there are in fact infinitely many 

Having two seemingly different formulations of FLT we have to decide which numbers which provide a 

: : i : : counterexample to the converse of 

one to use in a given situation. When confronted with a result about all FLT. 

integers a, as in Example 1.4, you must use a? = a (mod p), to ensure that 

the argument caters for the case a = 0 (mod p). On the other hand, when 

dealing with a result concerning integers a for which a #0 (mod p), as in 

Example 1.3, although a? = a (mod p) still applies, the alternative 

congruence a?~! = 1 (mod p) invariably leads to simpler computations. 


Problem 1.4 


Prove that 168 divides a® — 1, where a is any integer for which 
gcd(a, 42) — 1. 


Problem 1.5 


For any integer a show that a? and a have the same units digit. Deduce that 


a! has the same units digit as a*. 


2 REPRESENTATION OF FRACTIONS 
BY DECIMALS 


2.1 Terminating and cycling decimals 


When reciprocals of integers are written out as decimals a variety of 
patterns emerge. A few reciprocals are shown in Table 2.1. 


Table 2.1 The decimal representation of the reciprocals of 2 to 13 


Reciprocal Decimal representation 
0.5 
0:33:09) 
0.25 
0.2 


0.1666... = 0.1(6) 
0.142857142857142857 . . . = 0.(142857) 
0.125 

0.111... =0.(1) 

0.1 

0.090909... = 0.(09) 

0.08333... — 0.08(3) 
0.076923076923076923 . .. = 0.(076923) 
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We observe that some of the decimals terminate while others go on forever. 
All the non-terminating ones have a ‘cycle’ which is eventually repeated 
indefinitely, such as the cycle (142857) of length 6 in + and the cycle (09) of 
length 2 in $. In some of the decimals (for example i and i) there is just 
the repeating cycle, while in others (for example 4 and 45) the cycle is 
preceded by some dissimilar digits. Can we explain these differences? 


To determine the decimal of E by hand you might well proceed by long 
division, as illustrated on the left in Figure 2.1 . To remind you of how long 
division works, at the boxed stage, 20 is divided by 7 giving a quotient of 2 
and a remainder of 6. The remainder is then multiplied by 10 and the 
process continues by dividing 60 by 7. On the right we have presented the 
same set of calculations expressed in terms of the division algorithm. 


From the system of equations we observe that the remainders which arise 
are the least positive residues modulo 7 of successive powers of 10. The 
seventh equation reveals that 109 = 1 (mod 7), a fact that we could have 
predicted by virtue of FLT. Observe also that at the seventh equation we 
meet the first repeated remainder, as 1 was also the remainder in the 
original equation. The relevance of this is that thereafter the same sequence 
of equations must recur: the eighth equation is the second one again, and so 
on, explaining the cycling of the decimal. 


There is nothing special about 7 here. For any positive integer n, as there 
are only n residues modulo n, a remainder must repeat, and from this point 
onwards the sequence of equations recurs. 


Problem 2.1 
Determine, by using the division algorithm, the decimal of (a) i- and (b) à. 
10 


The ‘angle bracket’ notation is used 
to indicate that the string of digits 
in the brackets repeats indefinitely. 


The length of a cycle is the number 
of digits forming the cycle. 


0.1428571... 1 =0x7+1-., 


7 )1.0 i Peca 


7| edd EIE T4343... md 
28: 30=4x74+2-. z10 
20; me 
114) H=2x7+6-, z10 
—À a , 
56 | 496 -8xT 4. xd 
40 ' ee a 
35 P" 5xT-5-. =10° Notice that the zero quotient in the 
X ! x first equation just gives the zero 
50 | CURT bI before the decimal point. 
49 50=7x7+1-, =10° 
10 : ae 
— <- 
7 10=1x7+3 =W 


Figure 2.1 The decimal of + by long division 


1 

Let us look at the general reciprocal — for the integer n > 1. Suppose that 
n 
the equations on dividing 1 by n begin 


1 =0n+1 Note that each q; is one of the 
= digits 0, 1, 2,..., or 9 since 
E a Te Ue 0 € 10r;-1 « 10n, and q; is the 
lOri = qon + r2 0€ ro«n quotient on dividing 10r;_1 by n. 
10r2 = qan + r3 OSTIN Note also that, for each k, 
ry = 10* (mod n). 


1 
The decimal of — then begins 0.419243 .... But it is the remainders r; which 
n 
tell us when recurrence will take place. As each of the remainders r; is one 
of the n integers satisfying 0 < r; < n, there are at most n different 
equations here, and once a remainder appears for the second time 
subsequent equations repeat in a cycle. 


One possibility which we have not considered is that remainder 0 arises. If 
this happens the sequence of equations becomes, for some k 


10rk-2 = qk-1N + TK-1 
lO0rj.;i = qyn +0 
0 =0n+0 


This is the situation corresponding to the terminating decimal. The last 
non-zero equation tells us that n divides 10r,_1, from which we deduce that 
n divides 10*. Now the divisors of powers of 10 are those numbers whose 
only prime divisors are 2 and/or 5, namely the numbers of the form 2755, 
where r 7 0 and s 7 0. Conversely if n — 2755, then n divides 10* where 


Tk-1 = 10*7! (mod n) 


1 
k = maxír, s) and the decimal of — terminates after k decimal places. So 
n 


1 
the integers 1 < n « 100 for which the decimal of — terminates are n = 2, 4, 
5, 8, 10, 16, 20, 25, 32, 40, 50, 64 and 80. 


11 


We summarize these findings in the following result. 


Theorem 2.1 Terminating decimals 


il 
The decimal of — terminates if, and only if, n = 275%, for some integers 


n 
r>Oands>0. 


Diversion 
1x7+3=10 
14 x 7 4-2 — 100 
142 x 7+6 = 1000 
1428 x 7 + 4 = 10000 
14285 x 7 + 5 = 100000 
142857 x 7 + 1 = 1000000 
1428571 x 7 + 3 = 10000000 
14285714 x 7 + 2 = 100000000 
142857142 x 7+ 6 = 1000000000 
1428571428 x 7 + 4 = 10000000000 
14285714285 x 7 + 5 = 100000000000 
142857142857 x 7 + 1 = 1000000000000 


2.2 The order of an integer 


1 
Let us turn to : for p a prime other than 2 or 5. As gcd(p, 10) = 1, FLT 
tells us that 107! = 1 (mod p). The implication of this for the system of 


equations for — is that the remainder in the pth equation is 1, and this will 
p 
be a repeat of the remainder in the initial equation. 


1=0xp+1 


10°-'=1=0xp+l1 


1 
So the decimal of — has a cycle which begins immediately after the decimal 


point and which bos length at most p — 1. We say that the length is at most 
p — 1 because, although we know that 1077! = 1 (mod p), it might also be 
the case that 10% = 1 (mod p) for some smaller positive integer k, and the 
remainder 1 would be repeated in an earlier equation. Indeed we have 
already seen that this can happen. When p — 11 the decimal of E is 0.(09). 
As predicted, this has a cycle beginning at the first decimal place. But the 
length of this cycle is 2 rather than the suggested 10, because it is the case 
that 10? = 1 (mod 11). Similarly, in Problem 2.1 we discovered that + has 


41 
a cycle of length 5. While FLT assured us that the cycle length could not We should really say that the 
exceed 40, since 104° = 1 (mod 41), it is readily checked that decimal of i: has a cycle of 
10? = 1 (mod 41). length 5. However, when the 
meaning is clear we shall often 
All this suggests that we should look with interest at increasing positive omit ‘the decimal of’ for brevity. 


powers of 10 searching for the first one which is congruent modulo p to 1, for 


1 
this least exponent will give the length of the cycle in —. We refer to this 
p 
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least exponent as the order of 10 modulo p. The general definition is as 
follows. 


Definition 2.1 The order of an integer If gcd(a, p) 1 then a = 0 (mod p) 
and so a^ = 0 (mod p) for all 
positive integers c. In this case 
there is no concept of order. 


If p is prime and gcd(a, p) = 1, then the order of a modulo p is the 
least positive integer c such that a^ = 1 (mod p). 


This definition assumes that for gcd(a, p) = 1 there is a unique least positive 
integer c such that a^ = 1 (mod p). This is guaranteed by FLT since 
a?-! = 1 (mod p) gives c € p — 1. 


With this terminology at our disposal, we can state formally what we have 


discovered about the cycle in =. 
p 


Theorem 2.2 The cycle length of > 


i 
The length of the cycle in the decimal of — is equal to the order of 


10 modulo p, where p is a prime other than 2 or 5. 


fe Se aan ee ee ee M 2 v 
Determine the order of 10 modulo 17 and hence the length of the cycle of i. 


Table 2.2 shows the order of 10 modulo each of the primes p « 100 (other 

than 2 and 5). Notice that for nine of these primes the order of 10 modulo p 

is p — 1. When this occurs we say that 10 is a primitive root of p, and in this We deal with primitive roots in 
case the successive powers of 10 run through all the p — 1 non-zero residues general in the next unit. For our 


of p in some order, as illustrated for the prime 17 in Problem 2.2. present purposes we are concerned 
only with cases where 10 is a 


primitive root of p. 


Table 2.2 The order of 10 modulo p for primes p < 100, other than 2 or 5. 


Prime p Order of 10 Prime p Order of 10 
modulo p modulo p 

3 1 AT 46 
7 6 53 13 

11 2 59 58 

13 6 61 60 

Ed 16 67 33 

19 18 Tea 35 

23 22 73 8 

29 28 79 13 

31 15 83 41 

37 3 89 44 

41 5 97 96 

43 21 


This is the start of a much more extensive table which illustrates how, over 
the years, mathematicians have devoted large portions of their lives to 
calculations which can only be their own reward. In 1873 William Shanks 
published an extension of this table covering all primes up to 30000 and 
subsequently progressed the table to all primes less than 120000. To get 
some idea of how much calculation this involved, and remember that we are 
talking about the days long before electronic calculating devices had landed 
on our desks, consider the prime 61. We know that 109? = 1 (mod 61) and 


13 


we need to confirm that there is no smaller positive integer k for which 

10* = 1 (mod 61). In Problem 2.2 we attacked a similar problem for the 
prime 17 by working out all the smaller powers of 10. There was no need to 
work them all out as the following illustrates. 


Problem 2.3 


Prove that if the order of 10 modulo 61 is c, then c is a divisor of 60. 


By virtue of Problem 2.3 the order of 10 modulo 61 can be determined by 
finding the least positive residues, modulo 61, of the following powers of 10: 


10,107, 10". 10" 10^. 10°. 10". 1907. 19/5. 10" and io. 


'The required order is the exponent in the first of these which is congruent 
modulo 61 to 1. If, as turns out to be the case, none of them is congruent to 
1 then the order of 10 is 60. This is a considerable improvement on having 
to determine all the first 60 powers of 10 but it still represents a considerable 
amount of computation; and all this is for just one relatively small prime. 
No doubt Shanks had a number of short-cuts available, but to achieve what 
he did by hand was no mean feat. 


The result of Problem 2.3 can be generalized, for there is nothing special 
about the prime 61. The proof of the following result, which we shall use in 


the next unit, simply follows the argument given in the solution of 
Problem 2.3. 


Theorem 2.3 


If a has order c modulo p, where p > 3 is prime, and a^ = 1 (mod p) 


then c is a divisor of k. 


In particular, c divides p — 1. 


Proof of Theorem 2.3 
By the Division Algorithm, we can write 

k-qc-cr, where0 € r « c. 
Now 

a! = att" = (af)? x a^ = 1? x a^ =a" (mod p) 
and as a^ = 1 (mod p), a^ =1 (mod p). Therefore, r = 0, for otherwise the 
order of a would be less than c. Hence c divides k. 


As FLT gives a?~! = 1 (mod p), the order c divides p — 1. a 


2.3 Decimal representations of rational numbers 


To determine the decimal of 2 we proceed just as for +, but this time the 
first equation involves dividing 2 by 7. 


2=0x7+2 
20=2x7+6 
60=8x7+4 
40=5x7+5 
90— Tx T--1 
10—1»x7T7-r3 
30=4x7+2 


Notice that we get the same cycle of six equations as we had for i but 
starting with a different equation. So the same six digits, in the same cyclic 
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order but this time starting with the — 2: spent the cycle (285714) of 2. 
In the same way you could check that 3 = 2, ? 2 and 2 have decimals 
consisting of the same cycle of digits as that of i but with appropriate 
starting points as shown below. 

— 0.(142857) 

(285714) 
(428571) 
-( ) 
( ) 


MMO Nilo NIe NIY NIN Ale 
Il 
co ccc 


— 0.(857142) 


TR situation is similar for any prime p having 10 as a primitive root. For Although the proof of this result is 
not too demanding we have opted 


such a prime the cycle of — has length p — 1 and each A fon vole 2. s. fit to ineindé IE here: 


p — 1, has the same cycle of p — 1 digits but each with its own starting 
position. 


Problem 2.4 
Given that i5 = 0.(0588235294117647) determine the decimals of 4 and $ 


We would be lacking in curiosity if we did not now ask whether or not any of 
this ‘recycling’ occurs when 10 is not a primitive root of prime p. Look at 
p — 13. In finding the decimal of E we get the following set of equations. 


1=0x13+1 
10 — 0 x 13+ 10 
100 =7 x 13+9 
90 = 6 x 13412 
120 = 9 x 13+ 3 
30=2x13+4 
40=3x13+1 


As the cycle has length six, the order of 10 modulo 13 is 6 and so 10 is not a 
primitive root of 13. By taking each of its six starting points these equations 
give following the six decimals: 


$= = 0. (076923), = 0. (230769), = = 0. (307692), 1 Debet 
9 10 "n The numerator in each fraction is 
i3 = 0. (692307), ET = = 0.(769230), Ts) 0.(923076). the remainder in the equation 
In finding the decimal of 5 we get the following set of equations. r$ dics ork iij 
2=0x13+2 
20=1x13+7 
70=5x13+5 


50=3x 13411 
110=8 x 13+6 
60=4x13+8 
80 =6x 13+2 


These equations give a second set of six decimals: 
ij = 0.(153846), Š = 0.(384615), = 0.(461538), 
75 = 0.(538461), $ = 0.(615384), = 0.(846153). 


T m 


There is nothing exceptional in this were for the prime 13: it is typical 
of what happens for any prime p. Suppose that the order of 10 modulo p 


T 
is c. It turns out that the decimals of = for 1 < r < p form sets, each set 
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consisting of c members with the same cycle of c digits varying only in their 
starting points. For example, consider p — 41. The order of 10 modulo 41 

is 5 (see the solution of Problem 2.1) and the 40 decimals Z have cycles of 
five digits. So these decimals will form eight sets, each set consisting of the 


same cycle but with the five different starting points. These are displayed in 
Table 2.3. 


Table 2.3 The sets of cycles of P for 1 <r < 41 


Set Decimals 

1 d =0.(02439) 4° —0.(24390) 19 =0.(39024) 48 =0.(43902) 37 = 0.(90243) 
2 i —0.(04878) 29 =0.(48780) 32 =0.(78048) 33 = 0.(80487) 3$ = 0.(87804) 
3 2 =0.(07317) 4 =0.(17073) ł =0.(31707) 29 =0.(70731) 32 = 0.(73170) 
4 d =0.(09756) 2 —0.(56097) 29 =0.(60975) % =0.(75609) 19 = 0.(97560) 
5 d =0.(12195) i =0.(19512) 2 =0.(21951) 2: —0.(51219) 39 = 0.(95121) 
6 £ =0.(14634) i$—0.(34146) i1 —0.(41463) 19 =0.(46341) 28 = 0.(63414) 
7 FF =0.(26829) 12 =0.(29268) 22 =0.(68292) 34 =0.(82926) 3% = 0.(92682) 
8 32 =0.(36585) 22 —0.(53658) 24 = 0.(58536) 27 = 0.(65853) 39 = 0.(85365) 


We shall leave decimals at this point, aware that there are further areas for 
investigation. In particular, we have not pursued reciprocals of composite 
numbers, other than to recognize which ones terminate. As a parting 
observation we mention that the decimal of 5 is a cycle of length 42: 


dg = 0.(020408163265306122448979591836734693877551), 
and that the forty two decimals obtained from this cycle by letting each 


k 
digit of the cycle lead are the proper fractions 79° where 1 < k < 49; that is A proper faction is one of the form 


m ^ 
those with gcd(k,49) — 1. For example a» Where ged(m, n) = 1, ie. a 
11 — 0.(224489795918367346938775510204081632653061). ro GE eA aS EL 
ivisors of the numerator and 
However, of all composite integers less than 100, 49 is the only one which denominator have been cancelled. 


exhibits this elegant behaviour of its proper fractions. The relevance of the 
cycle length of 1/49 will become apparent once we have met Euler’s 
generalization of FLT, in the next unit. 


3 WILSON’S THEOREM 


Let us turn now to a result which is not of very much practical use but one 
which, nevertheless, has a prominent place in the development of number 
theory. The English mathematician Edward Waring reported, in his book 
Meditationes Algebraicae (1770), a result claimed by one of his former 
students, John Wilson. Wilson had asserted that for each prime p, the 
number 


(p—1)!4+1 
p 


is an integer. Wilson appears to have guessed the result on empirical 
evidence for neither he nor Waring could supply a proof. But shortly 
afterwards the French mathematician Lagrange gave a proof of the result. 
Throughout mathematical literature the result has become known as 
Wilson's Theorem, although a manuscript written in 1682 indicates that 
Leibnitz was aware of the result, and how to prove it, long before Wilson 
came on the scene. 
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The language of congruence gives us a neater way of expressing the result. 


Theorem 3.1 Wilson's Theorem 


If p is prime then (p — 1)! z —1 (mod p). 


We shall first look at the particular case of the prime 17 to illustrate the 
idea behind the proof that we are going to give. For p — 17 the theorem 
claims that 16! = —1 (mod 17). 


To evaluate 16! we could multiply together the sixteen numbers from 1 to 16 
inclusive, reducing the answer modulo 17. But notice how the numbers from 
2 to 15 inclusive pair up so that their product is congruent modulo 17 to 1. 


2x 9=1 (mod 17) 3 x 6=1 (mod 17) 
4 x 13 =1 (mod 17) 5 x 7=1 (mod 17) 
8 x 15 =1 (mod 17) 10 x 12 =1 (mod 17) 
11 x 14=1 (mod 17) 


This observation gives us that 
Toxo dex 5:x165€7 XXE XIX 10K 1 12 x13 x 14 x 15 
= 1’ =1 (mod 17), 
and so 
16! = 15! x 16 = 1 x 16 = 16 = —1 (mod 17). 


The substance of our general proof lies in showing that this convenient 
pairing of divisors in (p — 2)! always occurs. This particular proof was first 
given by Gauss. 


Proof of Wilson’s Theorem (Theorem 3.1) 

The observations (2 — 1)! 2 1 = —1 (mod 2) and (3 — 1)! = 2 = —1 (mod 3) 
confirm the result for p = 2 and p = 3, so we can confine attention to p > 5. 
Consider the set of p — 3 integers S = (2,3,4,...,p — 2). If a € S then, as 
gcd(a, p) = 1, the linear congruence az = 1 (mod p) has, (by Theorem 3.2 of 
Unit 3), a unique least positive solution modulo p. Let the solution be a’, so 
that aa’ = 1 (mod p). Now a’ Æ 1 for that would give a 1 (mod p), 
contradicting a € S. Similarly a’ Z p — 1 for that would imply 

a = —1 (mod p), again contradicting a € S. Hence a’ € S. 

Finally a Z a’, for otherwise aa’ = a? = 1 (mod p), which would give that p 
divides a? — 1. But then p divides (a — 1)(a + 1) whereupon Euclid's Lemma 
gives p divides a — 1 or p divides a + 1 which amount to a = 1 or a = p — 1 
respectively, each of which contradicts a € S. 


We conclude that for each element a € S there is a unique element a’ € S, 
a # a’, for which aa’ = 1 (mod p). Thus the elements of S form p= 


distinct pairs a and a’ with aa’ = 1 (mod p). Multiplying these congruences 
together, each element of S is involved exactly once, and so 


2x3x4x---x (p—2) =1 (mod p). 
Multiplying both sides of this congruence by (p — 1) gives 
2x3x4x---x (p—2) x (p—1)=p-—1 (mod p). 


That is, 
(p — 1)! z —1 (mod p), 
completing the proof. a 


Note that p — 3 is even as p is odd. 


T7 


The converse of Wilson's Theorem is also true, and its proof is relatively 
simple. 


Theorem 3.2 Converse of Wilson's Theorem 


If n > 1 is an integer and (n — 1)! = —1 (mod n) then n is prime. 


Proof of Theorem 3.2 


Suppose that n divides (n — 1)! 4- 1. Let r be a positive divisor of n, where 
r « n. Then as 


(n—-1)21x2x3x---xrx---x(n- 1), 


r divides (n — 1)!. But r divides (n — 1)! + 1, and so we are forced to 
conclude that r — 1. That is, n has no positive divisors other than itself and 
1, and therefore is prime. B 


Problem 3.1 
Find the smallest prime divisor of 
(a) 18!+ 1, and (b) 29! — 1. 


Wilson's Theorem together with its converse give a characterization of prime 
numbers: n > 1 is prime if, and only if, n divides (n — 1)! 4- 1. 
Unfortunately it is not of much practical use because of the amount of 
computation that would be involved in using it. For instance, to prove that 
43 is prime by this method involves checking whether or not 42! + 1 is 
divisible by 43. Even working modulo 43 the evaluation of 42! is quite 
demanding, and that is for a relatively small prime. However, Wilson's 
Theorem can be put to work in other ways. In the next example it is used to 
discover a solution of a quadratic congruence. The theory of quadratic 
congruences has great importance in number theory and we shall devote a 
substantial part of Unit 6 to its study. 


Example 3.1 


Show that the congruence z? + 1 = 0 (mod p), where p is an odd prime, has 
a solution if, and only if, p = 1 (mod 4). 


We first use Wilson's Theorem to show that the congruence has a solution 
when p = 4k + 1. In this case (p — 1)! = (4k)! = —1 (mod 4k + 1). That is, 


(p-1) 21x2x3x--- x (2k) x (2k - 1) x --- x (4k — 1) x (4k) 
= —] (mod 4k + 1). 


Now working modulo 4k + 1 we have 


4k = —1 
4k—1z-2 
2k+1= —2k, 


and substituting these values in the expression for (p — 1)! we obtain 
—] = (p — 1)! (mod 4k + 1) 
=1x2x--- x (2k) x (—2k) x --- x (—2) x (—1) (mod 4k + 1) 
=1x2x---x (2k) x (—1)?* x (2k) x --- x 2x1 (mod 4k + 1) 
= 1? x 2? x... x (2k)? (mod 4k + 1) 
= ((2k)!)? (mod 4k + 1). 


Hence x = (2k)! satisfies z? + 1 =0 (mod 4k + 1) and so the congruence has 
a solution. 
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We now show that if p 1 (mod 4) then there is no solution. In this case 
the odd prime is of the form 4k + 3. Heading for a contradiction, suppose 
that the congruence z? + 1 = 0 (mod 4k + 3) has a solution; that is, there is 


an integer a such that a? = —1 (mod 4k + 3). Then, applying FLT for 
prime 4k + 3: 

a**+2 =1 (mod 4k + 3). 
But 

gt (ay rH = (12H = ~1 (mod 4k 4-3), 
giving the contradiction 1 = —1 (mod 4k +3). $ 
Problem 3.2 


Find two solutions of the quadratic congruence x? + 1 = 0 (mod 29). 


Problem 3.3 
Prove that, for each odd prime p, 


1? x 3? x x (p-2? 2? x 4? x... x (p- 1? = (-1)9*9/7 (mod p). 
Hint: Use the fact that 2k = —(p — 2k) (mod p). 


As a final deduction from Wilson's Theorem we observe that it tells us that 
there are infinitely many integers n for which n! + 1 is composite: simply 


choose n = p — 1 for any prime p > 3. For other values of n the number As p is known to be a divisor of 
n! + 1 may be either prime or composite, and it remains an unanswered (p — 1)! 1, the latter is composite 
question as to whether or not there are infinitely many primes of the form except when (p — 1)! + 1 = p. This 


condition occurs only for p — 2 and 


n! +1. For values of n up to 100, those for which n! + 1 is prime are n = 1, pad 


2, 3, 11, 27, 37, 41, 73 and 77. 


4 POLYNOMIAL CONGRUENCES 


4.1 Lagrange's Theorem 


In preparation for the investigation of linear congruences in Unit 3, we 
briefly introduced the notion of polynomial congruences and their solutions. 
For convenience we reiterate the definitions here. 


Definition 4.1 Polynomial congruences and their solutions 


A polynomial congruence is an expression 


P(x) = cpa" e, 1a" 3 +--+ cT + co =0 (mod n), 


where P(x) is a polynomial of degree r > 0 with integer coefficients. 


An integer a is a solution of the polynomial congruence 
P(x) =0 (mod n) if, and only if, P(a) =0 (mod n). 


The number of solutions of a polynomial congruence is the number of 
incongruent solutions modulo n. 


In the congruence context we are concerned exclusively with integers and 
consequently we are forced to restrict attention to polynomials with integer 
coefficients. Hence, in this section, when we mention a polynomial it will be 
assumed that it has integer coefficients. 
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It follows from these definitions that the polynomial congruence 

P(x) =0 (mod n) has at most n solutions, and these could be discovered by 
finding which integers in a complete set of residues, such as 

(0,1,2,...,n — 1), are solutions. 


Problem 4.1 

Solve the following polynomial congruences. 
(a) z? — x =0 (mod 6) 

(b) z? — z =0 (mod 8) 

(c) z? -z 4-120 (mod 7) 

(d) 2z? + 9z + 15 =0 (mod 7) 


Consider the polynomial congruence 
T” + 3x14 + 8x19 + 32? + 6 = 0 (mod 7). 


This still may not appear too daunting. After all we could solve the 
congruence by exhaustion, evaluating the left-hand side for x = 0, 1, 2, 3, 4, 
5 and 6. But even that involves a good deal of computation, and if we 
change the modulus to something significantly larger this approach would be 
impracticable. What we need is a more sophisticated, systematic approach, 
and here FLT comes to our aid. 


7 


FLT informs us that, for all integers x, x‘ = x (mod 7), and so 
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r2 = (z^)? 


zê = r°z? = r's = x° (mod 7). 
Similarly, x!4 = z? (mod 7) and z!? = z^ (mod 7). Therefore solving the 
original congruence is equivalent to solving 


T? 3a? + 8z* + 32? +6 = 824 + 72? +6 = 0 (mod 7). 


Simplifying further by reducing the coefficients, 8 = 1 (mod 7), etc, we 
arrive at the equivalent congruence 


xz* —1=0 (mod 7). 


Checking the fourth powers of 0, +1, +2 and +3, we find that the 
congruence has just the two solutions z = +1 (mod 7). 


This example illustrates a useful role for FLT in solving polynomial 
congruences, offering the possibility of replacing the polynomial in question 
by one of smaller degree. We are not going to develop any general theory for 
solving such congruences here but, rather, just touch the beginnings of the 
subject through examples. What we shall find is that when working to a 
modulus which is not prime, unexpected and unwanted things can happen; 
but when the modulus is prime the situation is more clear-cut. Our 
principal goal is a theorem of Lagrange which gives an insight into the 
number of solutions to a polynomial congruence with prime modulus. 


Joseph Louis Lagrange (1736-1813) 


Lagrange was born in Turin to a French father and Italian mother, but 
he spent the most productive years of his life in Germany. His parents 
both came from wealthy backgrounds. However his father was an 
unsuccessful gambler with the result that Lagrange inherited very little. 
This could well have been fortunate for mathematics, for had Lagrange 
been wealthy he would, by his own admission, have been lost to 
mathematics. 


In his early education Lagrange was interested in the classics. But on 
encountering an essay by Halley — Newton’s friend, made famous by 
the comet named after him — extolling the relative merits of calculus 
over traditional geometric approaches to problems, he was converted to 
mathematics, and by the time he was 18 years old he was appointed 
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Professor of Mathematics at the Royal Artillery School in Turin. This 
was the beginning of a great career. 


Lagrange was an analyst, not a geometer. His early researches centred 
on applications of calculus and culminated in his masterpiece the 
Mecanique Analytique (Analytical Mechanics). Pushing his view that 
mechanics was really a branch of pure mathematics in which geometric 
ideas played no part, he remarks in the preface that the science of 
mechanics can be considered to be a geometry of a space of four 
dimensions — three Cartesian coordinates and one time coordinate. 
Despite this view, it is interesting to note that there are no diagrams in 
this work. 


Through private communications Euler recognized a great talent in the 
young Lagrange. Lagrange sent Euler a solution to the isoperimetric 
problem (a famous problem in the calculus of variations) using his own 
methods. This was a problem which Euler admitted had baffled him for 
many years. In 1766 when he was due to leave the Berlin Academy for St 
Petersburg, Euler schemed successfully to get Lagrange installed as his 
replacement. A message from Frederick the Great invited ‘the greatest 
mathematician in Europe’ to live near ‘the greatest king in Europe’. 
Lagrange accepted, and worked at Berlin for 20 years until, on the death 
of Frederick in 1787, he settled in Paris and took up French citizenship. 


For the next six years Lagrange contributed nothing to mathematics. 
The many years of excessively hard work had taken their toll and his 
appetite for mathematics had gone. He suffered long fits of depression. 
Strangely, it was the turmoil of the French Revolution which revitalized 
his interest in mathematics. Following the abolition of the old 
universities, the revolutionists created the Ecole Normale in 1795, and 
Lagrange was its first Professor of Mathematics. When the Normale 
closed in 1797 Lagrange moved on to become professor at the Ecole 
Polytechnique. During this period Lagrange gained a reputation as an 
outstanding teacher. His courses of lectures, and the recognition of the 
difficulties his students had with some of the concepts, led to his writing 
two classic works, the Theory of Analytic Functions and Lessons on the 
Calculus of Functions. 


Although Lagrange's main researches were in the domains of calculus 
and function theory, his interests were much more general and, like so 
many other greats before and after him, he had a special talent for 
number theory. His name is associated with solutions of many 
Diophantine equations (which we shall meet in Unit 8) and, in 
particular, Lagrange gave the first proof that every positive integer can 
be expressed as the sum of four squares. In this unit we shall see a 
result of Lagrange which is concerned with solutions of polynomial 
congruences. 


One well-known principle from the theory of equations, the so-called 
Fundamental Theorem of Algebra, asserts that a polynomial equation of 
degree n with real coefficients has at the most n roots (solutions). We 
already have evidence that the same principle cannot hold for polynomial 
congruences; for example, we witnessed in Problem 4.1 a polynomial of 
degree 3 for which the associated congruence modulo 6 has more than three 
solutions. Indeed, we have seen that linear congruences (degree 1) do not 
necessarily have unique solutions; the congruence 2x = 2 (mod 4) has the 
two solutions z = 1,3 (mod 4). However, looking back through the examples 
at hand, wherever the modulus is a prime this ‘misbehaviour’ does not occur. 
Lagrange, in 1768, proved that the number of solutions of a polynomial 
congruence in which the modulus is prime, is less than or equal to its degree. 
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But first, we must clarify what we mean by the degree of a polynomial 
congruence. Consider the following congruence. 


72? + 43? — 3 2 0 (mod 7). 


The polynomial involved has degree 3. However, when we turn to By the leading term in a 

congruence modulo 7, the leading term, 7z?, vanishes since 7 = 0 (mod 7). polynomial P(x) we mean the 
Hence modulo 7, this polynomial has degree 2 because the leading term with — (non-zero) term involving the 
non-zero coefficient modulo 7 is 42. 


highest power of x. By ‘non-zero 
modulo n' we mean ‘not congruent 
to zero modulo n'. 


Definition 4.2 Degree of a polynomial congruence 


If P(x) = crx" + c, 42"! 4 --- E ez + co then the polynomial P(x) 
has degree k modulo n if, after removing each term in which the 


coefficient c; = 0 (mod n), the leading term remaining is c,2*. 


If every coefficient c; = 0 (mod n) then the polynomial is not assigned 
a degree modulo n. 


The degree of the polynomial congruence P(x) = 0 (mod n) is the 
degree of P(x) modulo n. 


Problem 4.2 


What are the degrees of the following polynomial congruences? 
(a) 32° + 7z? — 2 = 0 (mod 5) 

(b) 102? + 3z +1=0 (mod 5) 

(c) 152? — 10z + 2 = 0 (mod 5) 


We are now ready to state our main result of this section. Its proof will 
come in the next subsection. 


Theorem 4.1 Lagrange's Theorem 


Let p be a prime. A polynomial congruence P(x) = 0 (mod p) of 
degree k > 1 can have at most k solutions. 


4.2 Factorizing polynomial congruences 


The proof that we shall give for Lagrange's Theorem follows closely one of 
the methods of proving the Fundamental Theorem of Algebra in which the 
polynomial P(z) is effectively factorized. To this end we shall first prove a 
subsidiary result which introduces the idea of factors in polynomial 
congruences. 


Theorem 4.2 


Let b be a solution of the polynomial congruence P(x) = 0 (mod p) of 


degree k > 1. Then P(x) = (x — b)P;(x) (mod p), where Pi(x) is a 
polynomial of degree k — 1 modulo p. 
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Proof of Theorem 4.2 


Suppose that P(x) = ckx" + cy 1z*71 +--+ cx + co, where 
ck #0 (mod p). Since P(b) = 0 (mod p) we have 
P(x) = P(x) — P(b) (mod p) . Now 


P(z) — P(b) = cy(a* — b*) + cy 1 (3*7 — bă!) +. --- eu (m — b). 
Each term in the sum on the right-hand side has a factor (x — b) since 

a” — b" = (x —b)(z' + br"? bz +... Ebr). 
Hence 

P(x) = P(e) — P(b) = (z — ) P (z) (mod p), 


where the polynomial P;(a) has integer coefficients and leading term ckx 
As ck #0 (mod p), Pi(x) has degree k — 1 modulo p. B 


k-1 


In the statement of Theorem 4.2 we called the modulus p, but we did not 
stipulate that p was prime. Indeed the above proof holds true for p 
composite. However, when we progress from a single factor to our next 
result, which pulls out a factor for each solution of the congruence, we do 
need the modulus to be prime. 


Theorem 4.3 Factorizing a polynomial modulo p 


Let p be prime and let bi, b2, ..., br be incongruent solutions of 
P(x) =0 (mod p) which has degree k > r. Then 


P(x) = (x — b1)(x — b2) . . . (x — b.) P. (x) (mod p), 


where the polynomial P,(x) has degree k — r modulo p. 


Proof of Theorem 4.3 


Theorem 4.2 tells us that P(x) = (x — b)P,(x) (mod p), where Pi(x) has 
degree k — 1 modulo p. Now P(b2) = 0 (mod p), and so 


(b2 — bi) Pi (b2) 0 (mod p). 


But p does not divide b2 — bı, since bı and bz are incongruent solutions 
modulo p. Hence P;(b5) = 0 (mod p) by Euclid's Lemma. This allows us to 
invoke Theorem 4.2 again: 


Pi(z) = (x — bz) P(x) (mod p), 
where P(x) has degree k — 2 modulo p. 
Substituting for Pı (x) gives 

P(x) = (x — by)(z — bg) Pa(x) (mod p). 


Continuing, from P(b3) = 0 (mod p) we deduce that P2(b3) = 0 (mod p) 
and hence that 


P(x) = (x — b3)P3(x) (mod p), 
where P3(x) has degree k — 3 modulo p. 
The desired result is reached when all r incongruent solutions have been 


processed in this way. n 


Let us look at an example to illustrate the proof of Theorem 4.3. 


'This is where we require the 
modulus p to be prime. 


23 


Example 4.1 


Let P(x) = z^ — x? + 5x? — 3x — 2. Confirm that 2 = 1,3 (mod 11) are two 
solutions of P(x) z 0 (mod 11) and find P2(x) such that 
P(x) = (x — 1)(z — 3) Po(x) (mod 11). 


P(1) =1-1+5-—3-—2=0 (mod 11) 
and 

P(3) = 81 — 27+ 45 — 9 — 2 = 88 = 0 (mod 11), 
so both are solutions as claimed. 


Writing z^ — z? + 5x? — 3x — 2 = (x — 1)(Az? + Bx? + Cx + D) (mod 11) 
we can solve for A, B, C and D by looking at the various powers of x and 
equating coefficients modulo 11. 


z^: 124A 

3); F= AtB giving B 0 

z^: = -B +C, giving C=5 

xz: —3= -C +D, giving D=2 
constant: —2 = —D, which provides a check. 


So zt — z? + 5x? — 3a — 2 = (x — 1)(z? + 5x + 2) (mod 11). 
Now x = 3 (mod 11) is a solution of z? + 5x + 2 = 0 (mod 11) and so 
z? +5r+2=(x—3)(Er? + Fx 4 G) (mod 11). 


We can solve this in the same way as above to get E = 1, F = 3, 


G =3 (mod 11). 
Hence 

z*— x? + 52? — 32 — 2 = (x — 1)(z — 3)(z? + 3a + 3) (mod 11). $ In fact the quadratic x? + 32 + 3 

cannot be factorized modulo 11. In 
Problem 4.3 just the same way as a quadratic 
: equation might have 0, 1 or 2 real 

For each of the following polynomials P(z), find all the solutions of solutions, it turns out that a 
P(x) = 0 (mod 7) by exhaustion, and hence factorize the polynomial quadratic congruence with prime 
modulo 7. modulus can have 0, 1 or 2 

2 solutions. The quadratic 
(a) z^ --4r — 4 congruence 
(b) z? +227 -z 3 z^ + 3x - 3 — 0 (mod 11) 


has no solutions. 


If we apply Theorem 4.3 to one particular polynomial we get a result which 
is well worth recording. 


Corollary to Theorem 4.3 


For any prime p 


gP—1z(z-1)x-2)(z—3)...(z — (p—1)) (mod p). 


Proof of the Corollary 
Consider the congruence 
qz? | _1=0 (mod p). 
FLT uncovers p — 1 incongruent solutions since this congruence is satisfied 
by x = 1, 2, 3,..., p— 1. Hence, applying Theorem 4.3 
2?! —1 = (z — 1)(z — 2)(x — 3)... (z — (p — 1))Q(z) (mod p), 


where Q(x) has degree p — 1 — (p — 1) = 0 modulo p. So Q(z) is a constant 
polynomial. Inspection of the coefficient of z?-! confirms that 
Q(x) 2 1 (mod p), as required. [s] 
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It would be remiss of us not to record what happens when z is taken to be 0 
in the Corollary. 


For any prime p, 


0-1 (-1)(-2)---(-(p — 1)) (mod p) 
= (—1)?-! (p — 1)! (mod p) 
= (p— 1)! (mod p), since p — 1 is even or 
p = 2 in which case — 1 = 1 (mod p). 
That is, 


which is Wilson's Theorem. 


The result of Theorem 4.3 is the backbone of our proof of Lagrange's 
Theorem. We simply have to draw the right conclusions from our ability to 
pull out a linear factor corresponding to each solution of the congruence. 


Proof of Lagrange's Theorem 


Suppose to the contrary that a polynomial congruence P(x) = 0 (mod p) 
has degree k but has incongruent solutions bj, bo, ... , bk and by. 
Applying Theorem 4.3 for the first k solutions we have that 


P(x) = (x — b)(x — be)... (£ — be) P(x) (mod p), 


where P,(r) has degree k — k modulo p. Having degree 0, P(x) is a 
constant polynomial, say, P(x) = a. Notice that the leading term in P(x) 
modulo p is az* and so, as P(x) has degree k modulo p,a 0 (mod p). The constant a is just the 


; : coefficient c; of Definition 4.2. 
Now consider the further solution b, : 


P(bk+1) = (bk+1 — bi) (bk — 2)... (bk+1 — be)a = 0 (mod p). 


This means that p divides (by, — bi) (b, — b2) ...(be+1 — b)a and so, p 
being prime, Euclid's Lemma implies that p divides one of the terms 

bk+1 — bj or p divides a. But neither of these is possible: p cannot divide 
bk+1 — b; as the solutions are incongruent modulo p, and we have seen that 
a x 0 (mod p). 


What has been contradicted? The only assumption made is that the 
polynomial congruence of degree k has k + 1 solutions. This therefore 
cannot happen and our proof is complete. n 


It is illuminating to see what happens when the modulus is not prime. 
Consider again the polynomial congruence 


z? — x = 0 (mod 6), 


which we found, in Problem 4.1, to have six solutions. One factorization of 
the polynomial z? — x is readily spotted: 


z? — z = x(x? —1) = 2(x-1)(4 +1) =0 (mod 6). 


Each of the three discovered factors suggests a solution of the congruence: 
x — 0, 1 and —1 (mod 6) respectively. But x = 2, 3 and 4 (mod 6) are also 
solutions, and the factorization has not contradicted this. For example, 
putting z — 4 into the factorized polynomial gives 


4(4 — 1)(4 + 1) = 60 2 0 (mod 6), 
and so the solution z = 4 (mod 6) has not gone away! 


The problem is that, since 6 is composite, we cannot deduce from 

«(az — 1)(z +1) 2 0 (mod 6) that x = 0 (mod 6), or (x — 1) z 0 (mod 6) or 
(x + 1) =0 (mod 6). The corresponding deduction in Lagrange's Theorem 
could be made because the modulus was prime, and this was the key to 
relating factors of the polynomial to solutions of the congruence. 
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Notice that since z = 4 (mod 6) is a solution of this congruence, 

Theorem 4.2 claims that x — 4 can be pulled out as a factor on the left-hand 
side of z? — x = 0 (mod 6). It can, showing that the one factorization which 
we wrote down above is not the only one! 


z? — x = (x — A)(z? + 4x + 3) (mod 6) 
= (x — 4)(x + 1)(z + 3) (mod 6). 


There are other ways of writing x? — x as a product of three linear factors to 
which it is congruent modulo 6. 


To complete the theoretical results of the section we give an interesting 
consequence of Lagrange's Theorem. 


Theorem 4.4 


If p is prime and d is a divisor of p — 1 then the congruence 


z^ — 1 2 0 (mod p) 


has exactly d solutions. 


Proof of Theorem 4.4 


Let p — 1 = dr for some integer r. If r = 1 then d = p — 1 and the result 
follows from the corollary to Theorem 4.3. We may assume therefore that 
r 2 2. Then 


ia S (a? = 1)(ad(779 + ad (r72) TA RSEN xt =e 1) 
= (z* — 1)Q(z), 
where Q(x) has degree d(r — 1) modulo p. 


Now we know from the corollary to Theorem 4.3 that z?^! — 1 = 0 (mod p) 
has p — 1 solutions. If a is such a solution then 


a?! — 1 = (a — 1)Q(a) =0 (mod p), 


from which Euclid’s Lemma informs us that either (a? — 1) = 0 (mod p) or 
Q(a) 5 0 (mod p). In other words, any solution of xz?-! — 1 = 0 (mod p) is 
necessarily a solution of either x? — 1 =0 (mod p) or Q(x) = 0 (mod p). 
Hence these latter two congruences have, between them, at least p — 1 
solutions. 


Now apply Lagrange's Theorem. The congruence x? — 1 2 0 (mod p) has at 
most d solutions and Q(x) = 0 (mod p) has at most d(r — 1) solutions. So 
between them they have at most 


d--d(r—-1)-dr-p-1 


solutions. It follows that they have, between them, exactly p — 1 solutions 
and, in particular, z — 1 =0 (mod p) has exactly d solutions. el 


(——————————————À a a — á— dí 


Diversion 
3442-5 
10° 11? 4-122 = 137 414^ 
21? + 22? + 23? + 24? = 25? + 26? + 27? 
36? + 37? + 38? + 39? + 40? = 41? + 42? + 43? + 44? 
55? + 56? + 57? + 58? + 59? + 60? = 61? + 62? + 63? + 64? + 65? 


m———————ÓÓÓÓ—————— ORIEL OE TELE DTELEEARLACA CEE MELEE E 


4.3 Congruences with composite moduli 


This section has been mainly concerned with theoretical results concerning 
polynomial congruences rather than with developing techniques for actually 
solving the congruences. For our purposes in this course we shall not have a 
great need to solve anything other than relatively simple congruences. We 
have seen that for not too large a prime modulus we can, failing anything 
better, attack congruences by an exhaustive method involving evaluation of 
the polynomial over a complete set of residues. To round off the section we 
shall look at a couple of more complicated examples with composite moduli 
which illustrate general lines of attack. 

Consider the polynomial congruence P(x) = 0 (mod m), where 

m = pPpb? |... Df. If a is a solution of this congruence then 

P(a) =0 (mod m) and so P(a) = 0 (moa pt) for each of the prime 
divisors. It follows that any solution of P(x) = 0 (mod m) must be a 
simultaneous solution of the r polynomial congruences P(x) =0 (moa pi). 


Conversely if a is a simultaneous solution of the r polynomial congruences 
then by repeated application of the corollary to Theorem 1.3 of Unit 8, ais 
a solution of P(x) = 0 (mod m). So if we solve, individually, each of the 
congruences involving a single prime, we can then use the Chinese 
Remainder Theorem to build a solution of the original congruence. Here is a 
simple example. 


Example 4.2 
Solve 22? + 5x — 3 = 0 (mod 72). 


As 72 = 2? x 3?, we first solve 22? + 5x — 3 = 0 (mod 8) and 
2a? + 5a — 3 = 0 (mod 9). Trying all eight possibilities for the first 
congruence and all nine for the second we discover that 


22? + 5x — 3 = 0 (mod 8) has the unique solution z = 5 (mod 8) and 
22? + 5x — 3 = 0 (mod 9) has solutions x = 5,6 (mod 9). 


The congruence 2x? + 5x — 3 = 0 (mod 72) therefore has two solutions: 
(a) the simultaneous solution of x = 5 (mod 8) and x 2 5 (mod 9), namely 


x =5 (mod 72), and 
(b) the simultaneous solution of x = 5 (mod 8) and z = 6 (mod 9), namely 
x = 69 (mod 72). $ 
"EE Le s E pic. egre me m T 


Solve z? — z -- 4 = 0 (mod 80). 
J——— M a OD Neto ies precast. th 


We have now reduced the problem of solving polynomial congruences to the 
task of solving P(x) = 0 (mod p*) for prime p. In fact all solutions of this 
latter congruence can be built up from solutions of P(x) = 0 (mod p)ina 
way that we shall now illustrate. 


Example 4.3 
Solve x? + z 4- 5 = 0 (mod 27). 


As 27 = 3?, we first solve the given congruence modulo 3. Trying x = 0, 1 
and 2 we find that 


i? -Fz--5- 0 (mod 3) 
has the unique solution x = 2 (mod 3). 
Moving up a power of 3, we next investigate 


i? --z 5-0 (mod 9). 
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If a is a solution then a? + a + 5 is divisible by 9 (and therefore by 3) and so 
a is also a solution of x? + z +5 = 0 (mod 3). That is, a = 2 (mod 3), and 
so the only possibilities are a = 2, 5 or 8 (mod 9). Putting in these values: 
23 4+2+5=15 = 6 (mod 9); 
53 +5 +5 = 135 = 0 (mod 9); 
(-1)? + (-1) +5 =3 =3 (mod 9), 
and so x = 5 (mod 9) is the unique solution. 
Moving up one more power of 3 and repeating the argument, any solution of 
xr? +2+5=0 (mod 27) 
must be a solution of z? + z 4- 5 =0 (mod 9) and hence must be congruent 
to 5 modulo 9. So we need only check the three candidates x = 5, 14 and 
23 (mod 27): 
53 4+5+5 = 135 = 0 (mod 27); 
143 + 14 + 5 = 2763 = 9 (mod 27); 
(—4)8 + (-4) + 5 = —63 = 18 (mod 27). 
We conclude that x = 5 (mod 27) is the unique solution of the given 
congruence. 4 


The strategy adopted in Example 4.3 will work for a general congruence of 
this form. Each solution of congruence P(x) = 0 (mod pr) is of the form 
b+ rp*-!, where b is a solution of the congruence P(x) =0 (mod p*~') and 
OST p. 


Problem 4.5 
Solve the congruences 

(a) z? -- z — 7 & 0 (mod 25), and 
(b) z? + 42 — 12 0 (mod 125). 


5 FERMAT'S AND WILSON'S 
THEOREMS REVISITED 


The results of Fermat's Little Theorem and Wilson's Theorems are 
illustrated in the solutions of two well-known combinatorial problems. 


Question 1 Having enough beads to permit unlimited use of each of n 
colours, how many different necklaces consisting of p beads can be made, 
where p is prime? 


Do we understand what is being asked? We shall assume that the necklaces 
are produced by first forming a string of p beads and then joining the ends. 
Our first step is therefore to count how many strings of p beads there are. 
Well that’s fairly straightforward. There are n choices for the first bead, 

n choices for the second bead, and so on. In all there are n? strings. 


Notice that, of the n? strings, n strings consist of beads of one colour alone 
(one such for each colour). Hence there are n? — n strings involving at least 
two colours. As the single colour necklaces are easily counted we shall put 
these to one side and concentrate on the ones involving two or more colours. 


As one must expect, the n? — n strings counted will not result in n? — n 
different necklaces being produced. For example, the five strings of beads 
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involving colours A, B and C illustrated in Figure 5.1 all result in the same 
necklace. 


The strings in this example are obtained from one another by removing the 
bead on the left and replacing it on the right of the string. We shall call the 
operation of moving a bead from the left end to the right end a ‘recycle’. 
Two strings which can be obtained from each other by a sequence of recycles 
clearly correspond to the same necklace. 


a 


Figure 5.1 Five strings giving the same necklace 


The five strings in Figure 5.1 are different. But if we were to consider the 
following string of four beads 


Figure 5.2 


we see that the second recycle would produce a string with the same colour 
scheme, BABA, and that further recycles here will produce just two different 
strings. So we need to ask how many different strings can be obtained from 
a string of p beads by recycles. The obvious answer is p, each of the p beads 
can occupy the left-end position, unless, as illustrated above for 4 beads, 
some fewer number of recycles restores the original colour scheme. We use 
the Division Algorithm to show that this cannot happen for a prime number 
of beads. 


Let k be the least number of recycles which restores the colour scheme of a 
string of p beads, where k > 1 since we are ignoring strings of a single 
colour. Dividing p by k, there exist integers q and r such that 


p=qk+r, where0 € r « k. 


Now if k recycles restores the colour scheme then so too does 2k 35; gk 
recycles. Furthermore p recycles certainly restores the colour scheme since 
each bead returns to its initial position. Therefore after the qk th recycle we 
have the original colour scheme and only a further r recycles are needed to 
restore it again. As k is the least number of recycles which can achieve this 
we must conclude that r — 0. This in turn implies that k divides p and, 
since p is prime and k > 1, we must have k = p. 


The outcome of this is that the n? — n strings involving two or more colours 
are partitioned into disjoint sets of p strings, each set consisting of strings 
which can be obtained from each other by a sequence of recycles. This 
means that p divides n? — n, which is Fermat's Little Theorem. 


29 


gen 
different 


One might be tempted to conclude from this that there are s. 


necklaces involving two or more colours and hence a grand total of 
ne =n 


p 
to be taken into account. Consider the following string. 


Da sen”, 


Figure 5.3 


+n different necklaces. Unfortunately there is a further complication 


It is the first string of Figure 5.1 but with order reversed (i.e turned over left 
to right). It gives rise to a further set of five strings which correspond to the 
same necklace (turned over) as shown in Figure 5.1. So there are really ten 
different strings which produce this necklace. In general, two different sets of 
p strings can give rise to the same necklace. We say ‘can’ because turning a 
string over does not always produce a new string, as illustrated by this 


string: 


Figure 5.4 A symmetrical string 


Recycling gives five different strings but if we then turn it over and recycle 
we get the same five again. To complete the task we have still to count these 
‘symmetrical’ strings. We leave you the task of completing Question 1 as a 
challenge. For the record, the number of necklaces is 


nP—mn n(Q0/2 -n 
E 4n cu adi 


Notice that as this is an integer value the first term still incorporates FLT. 


FPR: 


A similar problem leads to a demonstration of Wilson’s Theorem. 
Question 2 How many stellated p -gons are there, where p is prime? 


A stellated n-gon is formed by placing n points symmetrically around the 
circumference of a circle and then joining these points with n straight line 
segments, crossings being allowed. For n = 5 there are twelve stellated 
pentagons, as shown in Figure 5.5. 


Notice that the five pentagons in the first row are congruent, being obtained 
from each other by rotations through 27/5. Similarly the pentagons in the 
second row are congruent. The remaining two are the regular stellated 
pentagons, having rotation through 27/5 as a symmetry operation. Hence, if 
we classify stellated pentagons up to similarity (for we are not concerned 
about the size) there are two essentially different irregular ones plus the two 
regular ones. 


In the same way we now want to count the number of different stellated 
p-gons, where p > 2 is prime. We shall first count how many p-gons can be 
drawn (corresponding to the twelve pentagons) and then count how many of 
these are regular ones. The difference will give the irregular ones which will 
fall into sets of p congruent p-gons, being obtained from each other by 
rotation through 27/p. 


To count the total number of stellated p-gons, imagine starting at any point 
on the circle and drawing the p-gon. There are p — 1 choices for the first 
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destination, then p — 2 choices for the second destination, and so on. In all 
(p — 1)! stellated p-gons can be drawn. But this has counted each p-gon 


twice because one ordering of the p vertices visited and the reverse order 
— 1)! 


give the same p-gon. Hence there are E p-gons in all. (This agrees 


with the discovered 12 for the case p — 5.) 
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Figure 5.5 The twelve stellated pentagons 


The regular stellated p-gons are formed by choosing any k in the range When p is not prime this 

1 € k € p — 1 and joining each point on the circle to the one k places round construction will still draw a 

the circle clockwise from it. But again this counts each regular p-gon twice, Tegular p-gon for each choice of k 
because the choices of k — r and k — p — r will draw the same p-gon but RN E 


-1 
visiting the points on the circle in reverse order. Hence there are — 


regular stellated p-gons. 


P ! =. 
Finally, the = se 


congruent sets of p each as determined by rotation through 2x/p. Hence the 
total number of different stellated p-gons is 
p-1-q-5 T 
2p 24 
As this is an integer, the first term illustrates that p divides 
(p — 1)! — (p — 1), or, in congruence notation, (p — 1)! = —1 (mod p), which 
is Wilson's Theorem. 


irregular stellated p-gons are partitioned into 


ADDITIONAL EXERCISES 


Section 1 


1 Find the least positive residue modulo 13 of 5!2, 5!4 and 199614. 
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Use FLT to show that: 
(a) 399 + 59? is divisible by 17; 
(b) 2100 + 310? is divisible by 97. 


3 What is the remainder when 7!?* is divided by 155? Hint: 155 = 5 x 31. 
4 Show that a" =a (mod 42) for all integers a. 
5 If p and q are distinct primes, prove that p? ^! + q?~' = 1 (mod pq). 
6 Show that (p — 1)2?-! +1 and (p — 2)2??--1 are each divisible by the 
odd prime p. Is it true that (p — 3)2?—? + 1 is necessarily divisible by 
the odd prime p? 
Section 2 
1 Leibnitz claimed, in 1677, that for any positive integer n with 
gcd(n, 10) — 1, the length of the cycle of * is a divisor of n — 1. 
Determine the decimal fraction for d and prove him wrong. 
2 From Theorem 2.2 (page 13) it can be deduced that for each positive 
integer n, there are at most a finite number of primes p for which the 
1 
length of the cycle of i is n. Explain how. 
3 By first determining the prime decomposition of 104 — 1, find all the 
1 
primes p for which » has a cycle of length 4. From the decomposition 
1 
of 106 — 1, find all primes p for which " consists of a cycle of length 6. 
4 Consider an ordinary pack of 52 playing cards. In the perfect faro 
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shuffle the pack is cut into 


two equal halves which are then placed (flicked) alternately, as illustrated. 


MX 


Figure 5.6 The perfect faro shuffle 


The cards which initially occupy positions 1, 2, ..., 26 are moved to 
positions 2, 4, ..., 52 whilst the cards initially in positions 

27, 28, ..., 52 are moved to positions 1, 3, ..., 51. Thus the card 
starting at position z moves to position y, where 1 < y < 52 and 


y = 2x (mod 53). After n such shuffles this card will occupy position 

2”x (mod 53). 

(a) After how many perfect faro shuffles will the pack return to its 
initial order for the first time? 


(b) If two jokers are included in the pack, making 54 cards in all, after 
how many perfect faro shuffles would this pack be restored to the 
original order for the first time? 


Section 3 
1 Ifa is a primitive root of p then the numbers a, a?, a?,...,a?-? are 
congruent to the numbers 2, 3, 4, ..., p — 1, in some order, and 


a*q?-*-1 = gP-1 2 1 (mod p). 
Show that 2 is a primitive root of 29 and use the given observation to 
find the distribution of {2,3,...,27} into 13 pairs in such a way that 
the product of each pair is congruent modulo 29 to 1. Hence illustrate 
the proof of Wilson's Theorem for the prime 29. 
If p is a prime and a is any integer, prove that p divides both 


a?-Fax(p—1)! and a+a? x (p—1)! 


For p prime, prove that 


(p- 1)! 2p—1 (mod 1-24 3- --- - (p — 1)). 


Section 4 


1 


Show that z — 1 and z — —2 both satisfy 
a? 22? 4-6 4-5 2 0 (mod 7). 


Hence factorize z? + 2z? + 6x + 5 modulo 7 and find any further 
solutions of the congruence. 


Solve the following polynomial congruences. 

(a) 2? -- a -- a5 c a* -- 23 E a? E m 1 0 (mod 5) 
(b) 21? — 1 =0 (mod 7) 

(c) 2? — z? =0 (mod 11) 

(d) z? +23 =0 (mod 17) 


Solve the following polynomial congruences. 
(a) a? + 22? + 3x -- 9 2 0 (mod 35) 

(b) z? + z? + 3z -- 1 € 0 (mod 105) 

(c) z? — 7z -- 31 0 (mod 75) 


Challenge Problems 


1 


Show that if n is not a multiple of 42 then n9 + 1091 is composite. 
Show that the only possible values of n for which n9 + 1091 is prime are 
n = 210k, or n = 210k + 84, or n = 210k — 84. In fact n = 3906 is the 
smallest value of n for which nê + 1091 is prime. 
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2 Prove that if the prime p satisfies (p — 1)! + 1 = p”, for some integer r, 
then p — 2, 3 or 5. 


3 Prove that if ged(n, 10) = 1 then n!?! terminates in the same three 
digits as does n. 
4 Prove that if a and b are any integers and p > 3 is prime, then 
ab? — ba? 
is divisible by 6p. 
5 Prove that, if p is prime, then the binomial coefficient PC, is congruent 


modulo p to 2. (The binomial coefficients are defined by 


n! 


for non-negative integers n and r with r € n.) 


rv 


SOLUTIONS TO THE PROBLEMS 


Solution 1.1 


(a) Suppose that a? =a (mod p) for all integers a. Then if a 0 (mod p) 
we can cancel by a to obtain a?~! = 1 (mod p), as required. 


(b) Suppose that a?7! = 1 (mod p) for all a such that a z 0 (mod p). 
Then, multiplying by a, a? =a (mod p) for all a 0 (mod p). However, 
if a = 0 (mod p) then a? =a = 0 (mod p) and so a? =a (mod p) for all 
integers a. 

Solution 1.2 

(a) FLT tells us that 5° = 1 (mod 7). Therefore 

520 = (5°)3 x 5? 2 1? x 25 = 25 =4 (mod 7), 
and the remainder is 4. 
(b) 37 =3 (mod 17) and so 
37°” = 3°” (mod 17). 
Now FLT tells us that 3!6 = 1 (mod 17) and so 
3M = Fa (Bh v3 2i x F z3 (modit) 
= 27 x 9 = 10 x 9 = 90 = 5 (mod 17), 


and the remainder is 5. 


Solution 1.3 
If £ = a?-?b (mod p) then ax = a?~'b (mod p). Now, since ged(a, p) = 1, 
FLT gives a?~! = 1 (mod p) and so az = b (mod p), as claimed. 


The congruence 5x = 18 (mod 19) has a unique solution modulo 19 which 
we now know is z = 5!7 x 18 (mod 19). As 5? =6 (mod 19) we have 
x = 5! x 18 (mod 19) 
= (65 x 5) x (-1) (mod 19) 
(—2)* x(—5) (mod 19), since 6? = —2 (mod 19), 
= (—3) x (—5) (mod 19) 
z 15 (mod 19). 
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We first replace the 37 by its least 
positive residue before using FLT. 


Solutions to the Problems 


Solution 1.4 


As 168 — 3x 7 x 8, to prove that 168 divides a? — 1, we shall show that 
a9 =1 (mod 3), a =1 (mod 7) and aê = 1 (mod 8). Since 3, 7 and 8 are 
relatively prime in pairs, it then follows from Theorem 1.3 of Unit 3, that 
aê = 1 (mod 168). 


Given that gcd(a, 42) = 1 we know that gcd(a,2) = 1, gcd(a,3) = 1 and 
geda 7) — 1. 
From gcd(a, 7) = 1, FLT gives a = 1 (mod 7). 
From ged(a,3) = 1, FLT gives a? = 1 (mod 3), whereupon 
aê = (a?)? = 1? 2 1 (mod 3). 
Finally, from gcd(a,2) = 1 we have that a is odd. But Notice that as 8 is not prime we 
2 2 2 2 cannot use FLT. 
1^z3^z5*z 7° = 1 (mod 8), 


and so a? = 1 (mod 8). 


Therefore a = (a?)? = 1? = 1 (mod 8). 


Solution 1.5 


To focus on the units digit of a number amounts to consideration of the 


number modulo 10. So our task is to show that a? a (mod 10). 

Now FLT gives a? = a (mod 5). Moreover, a? = a (mod 2), since a? is even 
if, and only if, a is even. As 2 and 5 are relatively prime it follows that 

a? =a (mod 10). 


What can we now say about a! (mod 10)? 
a' = (a) = a” = (a) = a* (mod 10) , 


and so a!9? and a* have the same units digit. 


Solution 2.1 
(a) 1=0x1541 
10 2 0 x 15 4- 10 
100 — 6 x 15 4- 10 
100 = 6 x 154+ 10 


This last equation now repeats indefinitely. So 4 = 0.0(6). 
(b) 1=0x41+1 
10=0 x 41 4- 10 
100 = 2 x 414- 18 
180 = 4 x 41 + 16 
160 — 3 x 41 4-37 
370 =9 x 41+1 
10=0 x 414+ 10 


The block of five equations now repeats indefinitely and so d has the 
cycle length 5 and + = 0.(02439). 


Solution 2.2 
FLT tells us that 1016 = 1 (mod 17) and so the straightforward approach is 
to check each smaller positive power of 10 in turn looking for a least positive 
residue of 1. Going from one power to the next by multiplying by 10, the 
successive powers of 10 modulo 17 are: 
10; 100 = 15; 150 = 14; 140 2 4; 40 6; 602 9; 902 5; 50 = 16; 1602 7 
70 = 2; 2023; 30213; 1302 11; 110 = 8; 802 12; 120 = 1. 


The order of 10 modulo 17 is 16, and the cycle of + has length 16. 
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Solutions to the Problems 


Solution 2.3 


We know that 1099 = 1 (mod 61) and that c is the smallest positive integer 
for which 10° = 1 (mod 61). Suppose that dividing 60 by c gives 

60 = cq + r, where 0 € r « c. 

Then 1099 = (107)? x 10" = 1? x 10" = 10” (mod 61). But 

1099 = 1 (mod 61) so 10" = 1 (mod 61). Therefore r = 0, for otherwise the 
order of 10 modulo 61 would be smaller than c. Hence c divides 60, as 
claimed. 


Solution 2.4 
Notice that 10 is a primitive root of 17 (from Table 2.2 or from the length of 
the cycle of + being 16 and Theorem 2.2). 
2=0x17+4+2 
20=1x17+3 
30=1x17+4+13 


At this point we know that = begins 0.11 which pinpoints the starting point 
in the cycle of b. Thus 


E — 0.(1176470588235294). 


Similarly 
9=0xIT+9 
90=5x17+5 


50 22x 17-16 
shows that a begins 0.52, and so we can deduce that 


3 = 0.(5294117647058823). 


Solution 3.1 


(a) Wilson's Theorem assures us that 19 divides 18! + 1. For any prime 
p < 19, p divides 18! and so p cannot divide 18! + 1. Hence 19 is the 
smallest prime dividing 18! + 1. 


(b) Wilson’s Theorem tells us that 31 divides 30! + 1. Now 
30! + 1 = 30 x 29! + 1 = (—1)29! + 1 = 1 — 29! = 0 (mod 31), 


and so 31 divides 29! — 1. Furthermore 31 must be the smallest prime 
with this property because any prime p < 31 divides 29! and so cannot 
divide 29! — 1. 


Solution 3.2 


Example 3.1 showed that for any prime p = 4k + 1 the congruence This, of course, is not a very 
x? +1=0 (mod 4k +1) has x = (2k)! (mod 4k + 1) as a solution. For efficient method of solving the 
k =7, the congruence z? + 1 = 0 (mod 29) has solution x = 14! (mod 29). Pongrusnes. Ite inclusion;is to 


highlight the construction of 


Working modulo 29 we can simplify the calculation of 14! by pairing the Example 3:1 


terms appropriately: 
14! = 1 x (2 x 14) x (3 x 10) x (4 x 7) x (5 x 6) x (8 x 11) x (9 x 13) x 12 
= 1 x (-1) x 1x (-1) x 1x 1x1 12 (mod 29) 
= 12 (mod 29). 
Since (-z)? = x”, x = —12 = 17 (mod 29) is a second solution. 


In fact x = 12,17 (mod 29) are the only solutions of this congruence, as we 
shall see from work of the next section. 
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Solutions to the Problems 


Solution 3.3 


Let us first illustrate the proof for the particular case p — 11. Working 
modulo 11 we have 


2=-9, 4=-7, 6 = —5, 8 = —3 and 10 = -1. 
Therefore, 
—1 = 10! (mod 11) 
=1x2x3x4x5x6x7x8x9x 10 (mod 11) 
=1x3x 5x7 x 9x (—9) x (—7) x (-5) x (C3) x (C1) (mod 11) 
= (-1)° x 1? x 3? x 5? x 7? x 9? (mod 11). 
Multiplying through the final congruence by (—1)? gives 
1? x 3? x 5? x 7? x 9? = (—1)* (mod 11); 


which is one of the required formulae. The second comes quickly from the 
observation that from 2 = —9 (mod 11) we have 2? = 9? (mod 11) and 
similarly 


4 zT 6 257, 8? =3? and 10? = 1? (mod 11). 
Substitution gives 


2? x 4? x 6? x 8 x 10? = (-1)9 (mod 11). 


The same argument works for any odd prime p 


z-(p-2),4z-—(p-4), ..., (p-1) & -1 (mod p), 


= (p — 1)! (mod p) 
=(1x3x5x---x (p—2)) x(2x4x6x---x(p-—1)) (mod p) 
=(1x3x5x---x (p—2)) x (~(p—2) x (-(p—4) x --- x (—1)) (mod p) 
= (-1)0797 x 1? x 3? x ... x (p— 2)? (mod p). 
Multiplying by (—1) (97/2 gives 

1? x 3? x... x (p- 2? = (-1)t/? (mod p). 
For each k on the left of this congruence we can replace k? by (p — k)? to get 
the alternative formula 


2? x 4? x ... x (p- 1? = (-1)0*U/ (mod p). 


Solution 4.1 


(a) Trying x = 0, 1, 2, 3, 4 and 5, we find that z? = x (mod 6) in each case 
and so the congruence z? — x = 0 (mod 6) has six solutions, namely 
x=0, 1, 2, 3, 4, 5. (mod 6). 

(b) The straightforward approach is to test the result as z runs through a 


complete set of residues. However, recalling that z? — 1 = 0 (mod 8) See Solution 1.4. 
whenever z is odd, it follows that 


z? — x = z(a? — 1) =0 (mod 8) for z = 1,3,5,7 (mod 8). 
For x even, 0? — 0 = 0, 23 — 2 = 6, 43 — 4 = 4 and 6? -6 = 2 (mod 8). 


Hence there are five solutions in all, z = 0, 1, 3, 5, 7 (mod 8). 
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(c) The values of the polynomial for a complete set of residues are given 
below. 


'The numbers in the calculations 
here could have been kept smaller 
by using the set of least absolute 
residues modulo 7. 


There are two solutions, namely z = 2,4 (mod 7). 


(d) First, we simplify the congruence by reducing the coefficients modulo 7 
to get the equivalent congruence 22? + 2x + 1 = 0 (mod 7). As z takes 
values 0, 1, 2, 3, 4, 5 and 6, 2x? + 2x + 1 takes respective values 
(modulo 7) 1, 5, 6, 4, 6, 5 and 1. Therefore this congruence has no 
solutions. 


Solution 4.2 


(a) This has degree 6. You may have noticed that this congruence can be 
reduced by FLT to an equivalent congruence of lower degree (0 in fact), 
but this is not immediately pertinent. 


(b) Since 10 = 0 (mod 5), the leading term modulo 5 is 3z, so the 
congruence has degree 1. 


(c) Since 15 =0 (mod 5) and —10 = 0 (mod 5), the leading term modulo 5 
is the constant 2, so the congruence has degree 0. 


Solution 4.3 


(a) Evaluating z? + 4x — 4 for z = 0, +1, +2 and +3, two solutions z = —1 
and x = —3 are found. Pulling out the factor (x + 1) corresponding to The factors x + 1 and x + 3 could 
the first of these solutions, equally well be written as x — 6 


and x — 4 respectively. 
a? + 42 —4 = (x + 1)(Az + B) (mod 7) 
produces A — 1, B — 3 and the factorization 
x? +42 —4 5 (xz -- 1)(z +3) (mod 7). 


The second factor is the one expected, corresponding to solution 

x = —3 (mod 7). 

By exhaustion, we find that x? + 2x? + «+ 3 =0 (mod 7) has just the 
two solutions z = 1,2 (mod 7). 


~ 
c 
MÀ 


Pulling out the factor (a — 1): 
T? +22? +2+3 = (x — 1)(a? + 3x + 4) (mod 7), 
and then pulling the factor (x — 2) out gives 
T? +22? + x 43 = (x — 1)(x — 2)(z + 5) (mod 7) 
= (x —1)(r — 2)? (mod 7). 
Solution 4.4 


As 80 = 24 x 5 we solve the congruences x? — xz + 4 = 0 (mod 16) and 
xr? —~2+4=0 (mod 5). By exhaustion 


zr? —2+4=0 (mod 16) 
has solutions x = —3,4 (mod 16), and 
x? —x+4=0 (mod 5) 


has the unique solution z = 3 (mod 5). 
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Hence x? — x + 4 = 0 (mod 80) has two solutions. By solving 
simultaneously, 


= —3 (mod 16) and x =3 (mod 5) yield x = 13 (mod 80) 
and 


x — 4 (mod 16) and z = 3 (mod 5) yield x = 68 (mod 80). 


Solution 4.5 


(a) By trial and error we find that x? + z — 7 2 0 (mod 5) has solutions 
x = 1,3 (mod 5). So the only candidates for solution of 
x? +x — 7 € 0 (mod 25) are: 


from z 21 (mod 5), £= 1,6,11,16 and 21 (mod 25) 
and 

from z z3 (mod 5), «# 3,8,13,18 and 23 (mod 25). 
Of these 

11? + 11 — 7 = 125 = 0 (mod 25) 
and 

13? + 13 — 7 = 175 = 0 (mod 25) 


are the only solutions. Hence x? + x — 7 = 0 (mod 25) has solutions 
= 11) 13 (mod:25)- 
The congruence z? + 4x — 1 = 0 (mod 5) has unique solution 
xz = 3 (mod 5). The candidates for solution of x? + 4a — 1 = 0 (mod 25) 
are therefore x = 3,8, 13,18 and 23 (mod 25). 


But 


~ 
c 
wm 


3? + 12 — 1 = 20 = 20 (mod 25); 
8? + 32—1 = 95 = 20 (mod 25); 
13? + 52 — 1 = 220 = 20 (mod 25); 
(—7)? — 28 — 1 = 20 (mod 25); 
(—2)? — 8 — 1 = —5 = 20 (mod 25). 


Hence x? + Ay — 1 = 0 (mod 25) has no solutions, and from this 
x” + Ay — 1 = 0 (mod 125) can have no solutions. 


SOLUTIONS TO ADDITIONAL 
EXERCISES 


Section 1 


1. 5!? =1 (mod 13) by FLT. 
514 = 512 x 52 = 1 x 5? = 25 = 12 (mod 13). 


199614 = 71^ (mod 13), since 1996 = 7 (mod 13), 
=7 x7? =1x 7? (mod 13), since 7? 2 1 (mod 13) by FLT, 
= 10 (mod 13). 


As 5 is prime we know by 
Lagrange’s Theorem there are at 
the most two solutions; once we 
have found them we can stop. 


This method still involves much 
computation, but whereas 
exhaustion would involve testing 25 
values modulo 25, we have reduced 
this number to 10. 


This time we have saved a lot of 
computation! 
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(a) FLT gives 316 = 1 (mod 17) and 5!6 = 1 (mod 17). Therefore 
350 = (316332 = 1? x 9 2 9 (mod 17) 
and 
550 — (516)352 = 1? x 25 € 8 (mod 17). 


Hence 399 + 559 = 9 + 8 = 0 (mod 17), and hence 39? + 59? is 
divisible by 17. 


(b) As 97 is prime, FLT gives 296 = 396 = 1 (mod 97). Therefore 


9100 , 3100 _ 996 X 94 + 396 x 34 = 21 4 34 = 16+ 81 =0 (mod 97). 


Hence 2199 + 3199 is divisible by 97. 
155 = 5 x 31, and FLT gives 74 = 1 (mod 5) and 7% 2 1 (mod 31). 
Therefore 
7154 = (730)5 x 74 = 74 = 18? = 14 (mod 31) 
and 
7154 — (7538 x 7? 2 7? =4 (mod 5). 


By the Chinese Remainder Theorem, the simultaneous congruences 

x = 14 (mod 31) and z = 4 (mod 5) have a unique solution modulo 155 
which can be seen to be x = 14 (mod 155). So the remainder on 
dividing 7/94 by 155 is 14. 


As 42 = 2 x 3 x 7, we shall show that a” =a (mod 2), a’ =a (mod 3) 
and a’ =a (mod 7), and then appeal to the corollary to Theorem 1.3 
of Unit 3. 


Let a be any integer. For each of the primes p = 2, 3 and 7 we apply 
FLT in the form a? = a (mod p). 

p=2: a’ = (aĵa = aĉa = (a’)? =a’ =a (mod 2) 

p=3: a = (a°) a = @°a = a? =a (mod 3) 

p=7: a’ =a (mod 7) 


Hence, a” = a (mod 42) for all integers a. 


By FLT, p17! = 1 (mod q) and, since q divides q?^, 
pi 4 q?-' =1 (mod q). 

Similarly 
pt! 4 q?-! =1 (mod p). 

Therefore, since gcd(p, q) = 1, 
pt q^! =1 (mod pq). 


For odd prime p we have 2?~' = 1 (mod p). Therefore 
(p — 1)2?-' +1 =(p—1)x1+1=p=0 (mod p) 
and 
(p — 2)2?-2 41 = px 27-7? — 29-1 41=0-—141=0 (mod p). 


There is no obvious reason why (p — 3)2?~3 + 1 should be divisible by 
p, and indeed p — 3 gives a counter-example: 


(3—3)2573 +1=1#0 (mod 3). 


Section 2 


1 The system of equations for the decimal fraction of ap is 


1=0x21+1 
10=0 x 21+ 10 
100 = 4 x 214+ 16 
160 = 7 x 21 + 13 
130 =6x21+4 
40=1x21+19 
190 = 9 x 21 +1 


The equations now cycle. So En — 0.(047619), having a cycle of 
length 6. As 6 not a divisor of 21 — 1, Leibnitz' claim is disproved. 


1 
Ed ^ has a cycle of length n then 10" = 1 (mod p). That is, p divides 


10” — 1. Hence, p < 10" — 1, confirming that the number of such p is 
finite. 


3 The prime decomposition of 104 — 1 is 


105 —1— 3? x 11 x 101. 


If > has a cycle of length 4 then 10* = 1 (mod p) and so p must be a 


divisor of 10* — 1. These values are seen to be p — 3, 11, and 101. For 
each of these p the order of 10 modulo p is a divisor of 4, namely 1, 2 or 
4. Those p for which the order is less than 4 must satisfy 

10? 2 1 (mod p), which happens only for p a divisor of 10? — 1 — 99; 


1 
that is, p — 3 or 11. We conclude that the only prime p for which — has 
p 
a cycle of length 4 is 101. 


1 
In the same way, those p for which — has a cycle of length 6 are those 


prime divisors of 109 — 1 which are not divisors of either 102 — 1 or 
10? — 1. That is, any divisor of 3? x 7 x 11 x 13 x 37 which is not a 
divisor of either 3? x 11 or 33 x 37. The only primes satisfying this 
condition are 7 and 13. 


4 (a) If all cards return to their original position after n shuffles then 
2"y =x (mod 53), for all 1 < z < 52. 
As gcd(z, 53) = 1 we may cancel x to obtain 
^ £1 (mod 53). 
So n has to be a multiple of the order of 2 modulo 53, and indeed if 


n shuffles is the smallest number for which this occurs, n is the 
order of 2 modulo 53. 


FLT tells us that 2° = 1 (mod 53) so, by Theorem 2.3, the n we 
seek is a divisor of 52. Checking n — 2, 4, 13 and 26 we find 

22 — 4; 

2e T 

213 = 28 x 28 x 22 11 x 11 x 2 2 30 (mod 53); 

276 = (213)? = 30? = 52 (mod 53). 
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Therefore, as no smaller power of 2 is congruent modulo 53 to 1, 
the order of 2 modulo 53 is 52, and 52 shuffles are needed to restore 
the original order. 


When the number of cards in the pack goes up to 54 we have to 
find the smallest positive integer n for which 2" = 1 (mod 55). We 
note that 55 is not prime so we are not able to start from 
254 = 1 (mod 55). However noting that 55 = 5 x 11, FLT gives 

2^ =1 (mod 5) and 2'°=1 (mod 11). 
As lem(4, 10) = 20 we have 

220 — (24) 2 1 (mod 5) and 27° = (210)? 2 1 (mod 11). 


Since 5 and 11 are relatively prime the corollary to Theorem 1.3 of 
Unit 3 gives 2?? 2 1 (mod 55), and we have one solution to our 
problem; 20 shuffles will restore the original order of the pack of 54 
cards. 


If c is the smallest positive integer such that 2° = 1 (mod 55) then 
c must divide 20. Why? Suppose 20 = qc +r, where 0 € r <c. 
Then, as in the proof of Theorem 2.3, 

a?9 =at" = (a^)? x a” = 11a" (mod 55) 
showing that a” = 1 (mod 55) with r < c. Hence r = 0 and so c 
must divide 20. However, 

Yat 

2* = 16; 

2° = 32; 

210 — 26 x 94 = 9 x 16 = 144 = 34 (mod 55), 
shows that no smaller power of 2 is congruent modulo 55 to 1. So 
20 is the least number of shuffles which restores the original order. 


Section 3 


1 
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The successive powers of 2 modulo 29 are given in the table: 


Note that 2” takes all 28 non-zero values modulo 29, confirming that 2 
is a primitive root of 29. Now, if m 4- n — 28 then 

mon — gmtn — 328 = | (mod 29). For example, taking m = 8 and 
mc; 


28 x 220 = 24 x 23 = (—5) x (-6) = 30 =1 (mod 29). 


In all there are 13 such pairs, 1 with 27, 2 with 26, ... and 13 with 15. 


The value n = 14, (for which 2!4 = 28 = —1 (mod 29)), is omitted 
because it pairs with itself. The pairs are 


9x15=4x22=8x11=16x20=3x10=6x5=12x17 


The fact that 55 is not a prime 
does not affect the necessity for n 
to satisfy 2" = 1 (mod 55) as 
2”x = x (mod 55) has to hold for 
all x including x = 1. 


To get from one power to the next 
we just ‘double modulo 29’. 


24 x 23=19x 26=9x 13 = 18 x 21=7 x 25 = 14 x 27=1 (mod 29). 


Multiplying all these thirteen pairs of numbers together gives 
27! = 1 (mod 29), 
and multiplying through this by 28 we reach 
28! = 28 = —1 (mod 29), 
completing the illustration of the proof. 
For any integer a and prime p, FLT gives a? =a (mod p) and Wilson's 
Theorem gives (p — 1)! = —1 (mod p). Therefore 
a? +a x (p—1)!=a+ax (-1) =0 (mod p) 
and 


a+a? x (p—1)!=a+ax (-1) =0 (mod p). 


The result is certainly true for p = 2, so we assume that p is odd. Since 


=j 
1424+34: + (p-1) = PPO), 


—1 
and p and £ 


are relatively prime integers, it suffices to show that 


(p-1)!=p-—1 (mod p) 


and 


(p-1)2p-1 (uoa An 


The first of these is precisely Wilson’s Theorem and the second simply 


says that 0 = 0 since E 


—— (moa 2 DY 


is a divisor of p — 1, and so 


Section 4 


1 


When z —1 

a? + 20? +6r+5=1+2+6+5=14=0 (mod 7) 
and when z — —2 

a? + 2z? + 6r +5 — -8 +8 -— 124-5 — —7 0 (mod 7). 
So both are solutions and it follows that 

a? + 227 + 6 + 5 = (z — 1)(z + 2)(Ax + B) (mod 7). 


A little algebra reveals that A = B = 1 (mod 7) and consequently x + 1 

is also a factor. That gives a third solution, z = —1 (mod 7). As 

Lagrange's Theorem guarantees that this congruence of degree 3 cannot 

have more than three solutions we conclude that z — 1, —2, —1 (mod 7) The least positive residue solutions 
are all the solutions. are z — 1, 5, 6 (mod 7). 


(a) Since x = 0 (mod 5) is not a solution we may assume that 
gcd(5, x) = 1 so that z^ = 1 (mod 5). Substituting this into the 
polynomial congruence produces 


2(z? + z? +x -- 1) 0 (mod 5). 


Trial and error reveals that z — 2, 3 and 4 (mod 5) are the only 
three solutions. 
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(b) 


xi? — 1 = (a8 — 1)(x® + 1) = 0 (mod 7). 


z — 0 (mod 7) is not a solution, but for all other z we know from 
FLT that x6 — 1 = 0 (mod 7). So the congruence has six solutions, 
namely x = 1, 2, 3, 4, 5 and 6 (mod 7). 


z9 — z = z?(z? — 1) =0 (mod 11). 
x = 0 (mod 11) has the unique solution z = 0 (mod 11), whilst If z? =0 (mod 11) then 11 
x? — 1 2 0 (mod 11) has at most two solutions (by Lagrange's divides z?. But that can only 


Theorem) which can be seen to be x = +1 (mod 11). So there are happen when 11 divides z. 
three solutions, z = 0, 1 and 10 (mod 11). 


z5 + 2° = z?(z? +1) 2 0 (mod 17). 


x? = 0 (mod 17) has the unique solution z = 0 (mod 17), whilst 
x? + 1 2 0 (mod 17) has at most two solutions (by Lagrange's 
Theorem). Writing the latter in the equivalent form 

x? = 16 (mod 17) the solutions are seen to be z = +4 (mod 17). 
So there are three solutions, x = 0, 4 and 13 (mod 17). 


z? + 2x? + 3x + 9 2 0 (mod 5 x 7). 


We solve the congruence modulo 5 and modulo 7 and then look for 
simultaneous solutions. 


r? + 2x? + 32 +4=0 (mod 5) 
has solution (found by exhaustion) x = 1 (mod 5). 

T? + 23? + 32 + 2 =0 (mod 7) 
has solutions z = 3, 6 (mod 7). 
z =1 (mod 5) and z =3 (mod 7) if, and only if, z = 31 (mod 35). 
z =1 (mod 5) and z = 6 (mod 7) if, and only if, z = 6 (mod 35). 
There are two solutions, z = 6, 31 (mod 35). 
r? +a? +32+1=0 (mod 3x 5 x 7). 


Proceeding as in part (a), we first solve the congruence for each of 
the moduli 3, 5 and 7. However, this congruence has no solutions 
modulo 5 (as discovered by trying each of the values 0, +1, +2 

for x). Hence the congruence can have no solutions modulo 105. 


As 75 = 3 x 25, we first solve z? — 7z + 31 = 0 (mod 3), then solve 
x? — Tz + 31 = 0 (mod 25) and finally find simultaneous solutions. 


Working modulo 3: 
x? — Tx +31 2 a? — z c1 2 0 (mod 3), 
which is seen to have the unique solutions z = 2 (mod 3). 


To solve z? — 7z -- 31 2 0 (mod 25) we first find the solutions, if 
any, modulo 5. As 


a? — Tr +31 = z? — 21 + 1 = (zx — 1)? = 0 (mod 5), 


this has the unique solution x = 1 (mod 5). It follows that the only 
candidates for solutions modulo 25 are 


x 21,6,11,16,21 (mod 25). 
A little arithmetic confirms that each of these five is a solution. 


Hence the solutions of the original congruence are found by solving 
z — 2 (mod 3) simultaneously with each of these five values 
modulo 25. Five solutions emerge. 


x = 11,26,41,56,71 (mod 75). 
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